Job Closed
This listing is no longer active.
Join. Grow. Lead the Future of Supply Chain. At Cleo, we don’t just integrate supply chains—we orchestrate them. As the pioneer and global leader of the Supply Chain Orchestration software category, Cleo is helping thousands of companies around the globe drive transformation, deliver excellence, and shape the future of their global operations. Whether you're joining us from outside or growing within, Cleo is your platform to lead with purpose, innovate with impact, and thrive in a culture that champions your growth. Why Join Us? Strategic Influence: Be at the helm of global supply chain strategy, driving decisions that impact customers, partners, and communities worldwide. Innovation-Driven Culture: Work with the latest in AI, automation, and digital supply chain platforms to solve complex challenges. End-to-End Visibility: Lead across planning, sourcing, logistics, and fulfillment—connecting dots others can’t see. Sustainability at the Core: Help build ethical, transparent, and sustainable supply chains that make a difference. Why Grow with Us? Leadership Development: Access world-class programs, executive mentorship, and rotational opportunities to accelerate your career. Internal Mobility: We prioritize internal talent—your next big opportunity could be just one conversation away. Recognition & Impact: Your ideas matter. Your leadership is visible. Your success is celebrated. Inclusive Community: Thrive in a diverse, collaborative environment where every voice is heard and respected. Our Promise We are a top talent destination for supply chain leaders technology who want to make bold moves, solve real-world problems, and grow without limits. Whether you’re stepping into your first leadership role or scaling new heights, your journey starts here. Cleo … never stops
Cloud Security Lead
Location
United States
Posted
120 days ago
Salary
$130K - $150K / year
Seniority
Senior
Job Description
Cloud Security Lead
Cleo
Cleo is seeking a Lead Cloud Security Engineer to design, implement, and continuously improve security controls across our cloud infrastructure and SaaS environments. This role is responsible for strengthening Cleo's AWS security posture, embedding secure-by-default cloud guardrails, and partnering closely with Platform and Engineering teams to reduce infrastructure risk without slowing innovation. The ideal candidate is hands-on, technically deep in AWS, and experienced in building scalable cloud security capabilities in a high-growth SaaS environment. What You Will Be Doing Cloud Security Architecture - Design and implement secure cloud architecture patterns - Establish guardrails for AWS accounts and services - Strengthen multi-account strategy and segmentation - Improve IAM design, permission boundaries, and least-privilege models - Review major infrastructure changes for security impact Cloud Detection and Visibility - Implement and tune cloud-native detection capabilities - Integrate AWS security services into centralized monitoring - Identify misconfigurations and excessive permissions - Improve signal-to-noise ratio in cloud alerts Infrastructure as Code Security - Embed security controls into Terraform or other IaC workflows - Enforce policy-as-code guardrails - Ensure IaC scanning is integrated into CI/CD pipelines - Reduce configuration drift across environments Vulnerability and Configuration Management - Oversee cloud misconfiguration detection and remediation - Track infrastructure vulnerability exposure - Reduce critical vulnerability exposure window - Partner with Platform teams to automate remediation Data Protection and Encryption - Ensure proper encryption standards across storage and databases - Manage KMS usage and key lifecycle best practices - Strengthen logging and monitoring coverage Incident Response Support - Lead cloud-focused investigations during security incidents - Improve forensic readiness in AWS - Harden logging and evidence retention practices Automation and Continuous Improvement - Automate guardrails and enforcement mechanisms - Improve developer experience with secure cloud defaults - Reduce manual cloud security reviews - Optimizing tooling cost and effectiveness Metrics and Reporting - Define KPIs for cloud security posture - Report on misconfiguration trends and exposure windows - Provide executive-level reporting on infrastructure risk - Support audit and compliance evidence collection Your Qualifications Required - 7+ years of experience in cloud security, cloud engineering, or infrastructure security - Deep expertise in AWS architecture and services - Strong understanding of IAM design and least-privilege principles - Experience with Infrastructure as Code and CI/CD integration - Experience implementing cloud-native detection and monitoring - Ability to translate infrastructure risk into business impact Preferred - Experience in mid-market or high-growth SaaS environments - Experience supporting SOC 2 or similar audits - Familiarity with policy-as-code frameworks - Experience building multi-account AWS environments - Relevant certifications such as AWS Security Specialty, CISSP, or equivalent A few things we have to offer: - $130,000 to $150,000 base salary + bonus opportunity - Great Healthcare + Dental + Vision - Flexible PTO - Culture of support, encouraging Life-Work balance - 401k match - FSA and HSA options - Employee Assistance Program - Paid Parental Leave - Representing a company with 4,000+ clients and a 99% retention rate - Accelerated title and salary growth potential - A fun and energetic work environment that makes you excited to go to work every day
Benefits
- 401(K), 401(K) matching, Childcare benefits, Company-sponsored outings, Customized development tracks, Dental insurance, Disability insurance, Documented equal pay policy, Volunteer in local community, Family medical leave, Flexible Spending Account (FSA), Flexible work schedule, Generous parental leave, Company-sponsored happy hours, Health insurance, Job training & conferences, Open door policy, Life insurance, Paid volunteer time, Online course subscriptions available, Onsite gym, Open office floor plan, Paid holidays, Paid industry certifications, Paid sick days, Onsite office parking, Partners with nonprofits, Performance bonus, Promote from within, Recreational clubs, Lunch and learns, Remote work program, Free snacks and drinks, Team based strategic planning, Mandated unconscious bias training, Unlimited vacation policy, Vision insurance, Some meals provided, Mental health benefits, Home-office stipend for remote employees, Hiring practices that promote diversity, Employee resource groups, Quarterly engagement surveys, Hybrid work model, In-person revenue kickoff, President's club, Employee awards, Mother's room, Apprenticeship programs, Flexible time off, Bereavement leave benefits
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Design and maintain cutting-edge security technologies including SIEM (Sumo Logic), EDR solutions like CrowdStrike, and Zero Trust architecture • Develop smart detection rules and dashboards that catch the bad guys while keeping false alarms to a minimum • Design and implement security controls for GCP, including IAM, VPC security, data protection, threat monitoring, and regulatory compliance • Integrate security monitoring across our entire tech stack - from endpoints to cloud services • Partner with our SOC team to enhance threat detection and make incident investigations more effective • Implement Zero Trust security using Palo Alto Prisma/GlobalProtect to secure our remote access and network protection • Support data protection initiatives and DLP solutions to safeguard our most sensitive information
• Work on problems ranging from cryptography and networking to security automation and AI agents. • Collaborate throughout the Engineering team on the full product lifecycle from reviewing RFDs for proposed designs, code review, vulnerability testing, and documentation. • Work with detection and response stack to stop breaches, solving for false positives, detection coverage, and response automation by writing code and building AI agents.
Research Intern
Hudson InstitutePromoting American leadership for a secure, free, and prosperous future.
• Provide research and administrative support to the Center for Peace and Security in the Middle East. • Gather and analyze data for inclusion in reports and articles. • Write literature reviews using gathered data. • Keep the expert and team up to date on current events. • Assist the expert with research projects and presentations. • Assist with articles, op-eds, reports, and briefing memos. • Create databases of department contacts. • Assist with administrative tasks and event support.
Head of Security
Fortunate Media LimitedDigital Marketing agency who has delivered and executed strategies for some of the world’s largest iGaming companies
• Own the organization’s security posture end-to-end. • Define and maintain the security strategy, roadmap and operating model aligned to the business goals. • Establish security policies, standards and secure-by-default guardrails. • Own security exception handling and ensure compensating controls are documented and monitored. • Lead response to security incidents and coordinate internal/external stakeholders. • Implement and oversee controls such as IAM, MFA, least privilege, endpoint security, patching and secure configuration baselines. • Embed security into SDLC and perform/enable threat modeling and security reviews.




